Susan Sons has been named executive director for OmniSOC, the shared cybersecurity operations center for higher education and research led by Indiana University (IU). She reports to Aaron Neal, IU deputy chief information officer. Sons has been serving in an interim capacity since July 1. Previously, Sons was a chief security analyst at IU’s Center… Read more »
Tag: risk management
Defending against malicious code embedded in legitimate websites
Richard Biever is Duke University’s chief information security officer. Gagan Kaur is a data scientist at Duke University. The problem Security teams have the unenviable task of protecting large, complex, and diverse environments. Areas of focus typically center on protecting an internal network and today, cloud environments. Security infrastructure such as intrusion prevention/detection, firewalls, log… Read more »
Tension in Ukraine: Mitigating Effects on Higher Education
Our colleagues at REN-ISAC have created a guidance document for mitigating possible follow-on incidents because of the Ukraine situation. As tensions continue to escalate between Russia and the Ukraine, we as information security professionals need to take immediate steps to review, test, and upgrade our incident response practices in preparation for a possible nation-state sponsored attack. Nation-state actors have… Read more »
Join us for the Sept. 23 ResearchSOC webinar on ransomware
Sept. 23, 3-4pm EDT Ransomware: how an evolving business model changed the threat landscape Ransomware has existed in some form for more than 30 years. In the past 10, it has become an expected part of an attacker’s toolkit for monetizing a compromise. In this webinar, Ryan Kiser will discuss the history of ransomware, the… Read more »
ResearchSOC can help you comply with CIS Top 20 and NIST standards
Many research facilities are using the Center for Internet Security (CIS): Top 20 Critical Security Controls (CIS Top 20) as a basis for their cybersecurity programs. ResearchSOC can provide services that address several key elements of these control sets. ResearchSOC enables our clients to jump start their security program by providing or supporting adoption of… Read more »
Collaboration is critical in defending against cyberattacks
IU-based REN-ISAC leads workshops to tackle ransomware, blended threats The recent Colonial Pipeline ransomware attack has highlighted the increasingly blended nature of cyberattacks, which interrupt not only information systems but also physical infrastructure. Higher education organizations are often the target for these blended threats. Imagine a university that has been infiltrated by malicious ransomware. In addition… Read more »
Webinar preview: Operationalizing the framework: getting management to understand cybersecurity
Empowering organizations to confront cybersecurity challenges: a discussion with Trusted CI Framework architect Craig Jackson By Gregory Moore Cybersecurity professionals supporting research and higher education understand the value of having a common language with senior management. Published March 1, the Trusted CI Framework Implementation Guide for Research Cyberinfrastructure Operators provides such a common language, which can lead to mutual… Read more »